Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2023
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in FancyThemes Optin Forms – Simple List Building Plugin for WordPress plugin <= 1.3.1 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-06-26
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Flyn San IFrame Shortcode plugin <= 1.0.5 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-06-26
Denial of Service in GitHub repository jgraph/drawio prior to 18.1.3.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-06-26
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in CTHthemes TheRoof theme <= 1.0.3 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-06-26
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in TMS Booking for Appointments and Events Calendar – Amelia plugin <= 1.0.75 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-06-26
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PI Websolution Cancel order request / Return order / Repeat Order / Reorder for WooCommerce plugin <= 1.3.2 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-06-26
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Plainware ShiftController Employee Shift Scheduling plugin <= 4.9.23 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-06-26
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet.
CVSS Score
4.9
EPSS Score
0.002
Published
2023-06-26
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a specifically crafted packet to the CODESYS V2 runtime.
CVSS Score
4.9
EPSS Score
0.001
Published
2023-06-26
User enumeration in Checkmk <=2.2.0p4 allows an authenticated attacker to enumerate usernames.
CVSS Score
4.3
EPSS Score
0.003
Published
2023-06-26


Contact Us

Shodan ® - All rights reserved